Application Security - Penetration Testing Engineer

Datto   •  

Norwalk, CT

Not Specified years

Posted 176 days ago

This job is no longer available.

Datto is seeking an experienced Application Security Engineer to aid developers in the proactive identification of weaknesses in our products and services. This individual will have proficiency in penetration testing of operating systems and web applications. They will also offer application and architecture design and remediation guidance to engineering and product teams for identified issues. This role will report directly to the CISO and is a perfect opportunity for a self-starter interested in growing an Application Security function from the ground up.

Primary Responsibilities:

  • Discover threats, vulnerabilities and exploits through architecture design review, threat modeling, code review, and penetration assessments
  • Offer remediation guidance to stakeholders for identified issues and serve as an escalation resource for engineering as they mitigate issues
  • Draft application security policies and standards that can be leveraged in the secure development of products and services
  • Educate engineering employees on secure coding and development best practices
  • Assist in tools identification, onboarding and/or tools development to assist developers in the secure development of applications
  • Configure, run and monitor automated security testing tools
  • Build process and technology to streamline the reporting and prioritization of identified weaknesses

Qualifications:

  • Organized, detail-oriented and pragmatic with effective communication skills
  • Experience in driving application security requirements in a traditional SDLC as well as through stories and epics in an Agile and SCRUM development environment
  • Deep knowledge of software and web application vulnerabilities including, but not limited to, OWASP top 10
  • Penetration Testing or Systems Security Engineer experience
  • Software Engineering experience developing/debugging is a significant plus